CN105592456B - The method and system of two-dimentional code authentication - Google Patents

The method and system of two-dimentional code authentication Download PDF

Info

Publication number
CN105592456B
CN105592456B CN201410555221.5A CN201410555221A CN105592456B CN 105592456 B CN105592456 B CN 105592456B CN 201410555221 A CN201410555221 A CN 201410555221A CN 105592456 B CN105592456 B CN 105592456B
Authority
CN
China
Prior art keywords
imsi
application
quick response
code
sent
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201410555221.5A
Other languages
Chinese (zh)
Other versions
CN105592456A (en
Inventor
陆顾婧
赵潇
李晓明
邵铮
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Telecom Corp Ltd
Original Assignee
China Telecom Corp Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Telecom Corp Ltd filed Critical China Telecom Corp Ltd
Priority to CN201410555221.5A priority Critical patent/CN105592456B/en
Publication of CN105592456A publication Critical patent/CN105592456A/en
Application granted granted Critical
Publication of CN105592456B publication Critical patent/CN105592456B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Landscapes

  • Mobile Radio Communication Systems (AREA)
  • Management, Administration, Business Operations System, And Electronic Commerce (AREA)

Abstract

The invention discloses a kind of method and systems of two-dimentional code authentication, are related to Quick Response Code field.The embodiment of the present invention is applied by the Quick Response Code in terminal and generates Quick Response Code according to the IMSI of itself SIM card, to using IMSI as the voucher of two-dimentional code authentication, then the unified certificate server by mobile network completes the certification of Quick Response Code according to IMSI, relative to the method by each application system independent authentication Quick Response Code, improve the normalization of two-dimentional code authentication, and, using IMSI as an information of two-dimentional code authentication, so that Quick Response Code can only be used by the legal terminal with the IMSI, other illegal terminals can not use obtaining the Quick Response Code, to improve the safety of Quick Response Code application.

Description

The method and system of two-dimentional code authentication
Technical field
The present invention relates to Quick Response Code field, more particularly to the method for a kind of two-dimentional code authentication based on mobile network and it is System.
Background technology
With the rapid development of mobile Internet, Quick Response Code is widely used in various on-line off-line (Online To Office, O2O) scene.According to business form difference, Quick Response Code business is basically divided into main reading class and by reading class two major classes.Its In, main reading class business refers to:User on mobile phone by installing Quick Response Code application, shooting two-dimension code image, to obtain Quick Response Code Content, the triggering related application stored.Refer to by reading class business:User obtains Quick Response Code to hand from particular platform or client In machine terminal, then Quick Response Code is distinguished by special recognizing apparatus in application system, using as transaction or identification Voucher.
Quick Response Code in the prior art by reading class by each application system using being independently authenticated, due to using respectively only Vertical authentication system, normative and safety are poor.
Invention content
A technical problem to be solved of the embodiment of the present invention is:It is asked by the Quick Response Code application security of reading class is poor The specification sex chromosome mosaicism of topic and two-dimentional code authentication.
One side according to the ... of the embodiment of the present invention, a kind of method of the two-dimentional code authentication provided, including:Two in terminal It ties up code to apply from client identification module SIM card acquisition international mobile subscriber identity IMSI, and two dimension is generated according to basic information Code, the basic information includes the IMSI;Quick Response Code in terminal is applied is sent to application system by the Quick Response Code, so as to Application system reads 2 D code information from the Quick Response Code, and the IMSI in the 2 D code information is sent to authentication service Device;Certificate server receives the IMSI, generates a random number, and the random number is sent to the two dimension in the terminal Code application, according to the IMSI of reception, random number and key the first authentication values of generation to prestore;The Quick Response Code in terminal Using receive certificate server send the random number, and according in this terminal itself SIM card IMSI, the random number and The key to prestore generates the second authentication values, and second authentication values are sent to certificate server;Certificate server receives institute The second authentication values are stated, Quick Response Code is authenticated by comparing first authentication values and second authentication values.
In one embodiment, basic information further includes:The application message of Quick Response Code application.
In one embodiment, in application system after reading 2 D code information in the Quick Response Code, the method is also Including:Application system judges whether the application message in 2 D code information is the relevant application message of this application system, if it is The relevant application message of this application system, then execute the step that the IMSI in the 2 D code information is sent to certificate server Suddenly.
In one embodiment, the IMSI in the 2 D code information is sent to certificate server and includes by application system: Access system receives the 2 D code information that application system is sent, and preserves IMSI and application message in the 2 D code information; IMSI in the 2 D code information is sent to certificate server by access system.
In one embodiment, the random number is sent to the application packet of the Quick Response Code in the terminal by certificate server It includes:Access system receives the random number and IMSI that certificate server is sent;Access system is according to the IMSI and application message of preservation The corresponding application messages of IMSI of reception are found, and the application message found and random number are sent to by application system Quick Response Code application in terminal.
In one embodiment, after certificate server is authenticated Quick Response Code, the method further includes:Access system System receives the authentication result and IMSI that certificate server is sent;Access system finds according to the IMSI and application message of preservation and connects The corresponding application messages of IMSI of receipts, and authentication result and the application message found are sent to application system.
The system of a method according to the ... of the embodiment of the present invention, a kind of two-dimentional code authentication provided includes:Two in terminal Tie up code application and certificate server;The Quick Response Code application is known for obtaining international mobile subscriber from client identification module SIM card Other code IMSI, and Quick Response Code is generated according to basic information, the basic information includes the IMSI;It is additionally operable to the Quick Response Code It is sent to application system, so that application system reads 2 D code information from the Quick Response Code, and will be in the 2 D code information IMSI be sent to certificate server;It is additionally operable to receive the random number that certificate server is sent, and according to this terminal itself IMSI, the random number in SIM card and the key to prestore generate the second authentication values, and second authentication values are sent to and are recognized Demonstrate,prove server;The certificate server generates a random number, and the random number is sent to for receiving the IMSI Terminal, according to the IMSI of reception, random number and key the first authentication values of generation to prestore;It is additionally operable to receive second mirror Weights are authenticated Quick Response Code by comparing first authentication values and second authentication values.
In one embodiment, the basic information further includes:The application message of Quick Response Code application.
In one embodiment, the system of the two-dimentional code authentication further includes:Application system, for judging 2 D code information In application message whether be the relevant application message of this application system, if it is the relevant application message of this application system, then The step of IMSI in the 2 D code information is sent to certificate server by execution.
In one embodiment, the system of the two-dimentional code authentication further includes:Access system, for receiving application system hair The 2 D code information sent, and preserve IMSI and application message in the 2 D code information;It will be in the 2 D code information IMSI is sent to certificate server.
In one embodiment, the access system is additionally operable to receive the random number and IMSI that certificate server is sent;Root Find the corresponding application messages of IMSI of reception according to the IMSI and application message of preservation, and by the application message found and with Machine number is sent to the Quick Response Code application in terminal by application system.
In one embodiment, the access system is additionally operable to be authenticated it to Quick Response Code in the certificate server Afterwards, the authentication result and IMSI that certificate server is sent are received;Reception is found according to the IMSI of preservation and application message The corresponding application messages of IMSI, and authentication result and the application message found are sent to application system.
The embodiment of the present invention is applied by the Quick Response Code in terminal and generates Quick Response Code according to the IMSI of itself SIM card, thus will Then vouchers of the IMSI as two-dimentional code authentication is unified to complete recognizing for Quick Response Code according to IMSI by the certificate server of mobile network Card improves the normalization of two-dimentional code authentication, also, will relative to the method by each application system independent authentication Quick Response Code An information of the IMSI as two-dimentional code authentication so that Quick Response Code can only be used by the legal terminal with the IMSI, other Illegal terminal can not use obtaining the Quick Response Code, to improve the safety of Quick Response Code application.
By referring to the drawings to the detailed description of exemplary embodiment of the present invention, other feature of the invention and its Advantage will become apparent.
Description of the drawings
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, to embodiment or will show below There is attached drawing needed in technology description to be briefly described, it should be apparent that, the accompanying drawings in the following description is only this Some embodiments of invention without having to pay creative labor, may be used also for those of ordinary skill in the art With obtain other attached drawings according to these attached drawings.
Fig. 1 shows the flow diagram of one embodiment of the method for two-dimentional code authentication of the invention.
Fig. 2 shows the information exchange schematic diagrames of the further embodiment of the method for two-dimentional code authentication of the invention.
Fig. 3 shows the information exchange schematic diagram of the further embodiment of the method for two-dimentional code authentication of the invention.
Fig. 4 shows the structural schematic diagram of one embodiment of the system of two-dimentional code authentication of the invention.
Fig. 5 shows the structural schematic diagram of the further embodiment of the system of two-dimentional code authentication of the invention.
Fig. 6 shows the structural schematic diagram of the further embodiment of the system of two-dimentional code authentication of the invention.
Specific implementation mode
Following will be combined with the drawings in the embodiments of the present invention, and technical solution in the embodiment of the present invention carries out clear, complete Site preparation describes, it is clear that described embodiments are only a part of the embodiments of the present invention, instead of all the embodiments.Below Description only actually at least one exemplary embodiment is illustrative, is never used as to the present invention and its application or makes Any restrictions.Based on the embodiments of the present invention, those of ordinary skill in the art are not making creative work premise Lower obtained every other embodiment, shall fall within the protection scope of the present invention.
Unless specifically stated otherwise, positioned opposite, the digital table of the component and step that otherwise illustrate in these embodiments It is not limited the scope of the invention up to formula and numerical value.
Simultaneously, it should be appreciated that for ease of description, the size of attached various pieces shown in the drawings is not according to reality Proportionate relationship draw.
Technology, method and apparatus known to person of ordinary skill in the relevant may be not discussed in detail, but suitable In the case of, the technology, method and apparatus should be considered as authorizing part of specification.
In shown here and discussion all examples, any occurrence should be construed as merely illustrative, without It is as limitation.Therefore, the other examples of exemplary embodiment can have different values.
It should be noted that:Similar label and letter indicate similar terms in following attached drawing, therefore, once a certain Xiang Yi It is defined, then it need not be further discussed in subsequent attached drawing in a attached drawing.
In existing two-dimentional code authentication, Quick Response Code application system is respectively independently authenticated, the specification of two-dimentional code authentication Property and safety are poor.Inventor is by the SIM (Subscriber Identity Module, client identification module) of mobile network Block the core as Quick Response Code application authorization, Quick Response Code is authenticated, specifically, the Quick Response Code in terminal is applied from itself SIM card obtains IMSI, and (International Mobile Subscriber Identification Number, the world are mobile CUSTOMER ID), and Quick Response Code is generated according to IMSI, to using the IMSI of SIM card as the voucher of two-dimentional code authentication, then unite One is completed the certification of Quick Response Code by the certificate server of mobile network according to IMSI, relative to by each application system independent authentication two The method for tieing up code improves the normalization of two-dimentional code authentication, also, using IMSI as an information of two-dimentional code authentication so that Quick Response Code can only be used by the legal terminal with the IMSI, other illegal terminals can not make obtaining the Quick Response Code With to improve the safety of Quick Response Code application.
Fig. 1 is the flow chart of one embodiment of the method for the two-dimentional code authentication of the present invention.As shown in Figure 1, the embodiment Method include:
Step S102, the Quick Response Code application (or Quick Response Code applications client) in terminal obtain IMSI, and root from SIM card Quick Response Code is generated according to basic information, wherein basic information includes IMSI, can also include:The application message of Quick Response Code application.Two The application message for tieing up code application can be as the voucher of transaction or identification.
Step S104, the Quick Response Code in terminal is applied is sent to application system by Quick Response Code, so that application system is from two dimension 2 D code information is read in code, the IMSI in 2 D code information is sent to certificate server.Wherein, 2 D code information includes IMSI can also include the application message of Quick Response Code application.
Step S106, certificate server receive IMSI, two for generating a random number, and random number being sent in terminal Code application is tieed up, according to the IMSI of reception, random number and key the first authentication values of generation to prestore.
Step S108, the Quick Response Code application in terminal receive the random number that certificate server is sent, and according to this terminal from IMSI, random number in body SIM card and the key to prestore generate the second authentication values, and the second authentication values are sent to authentication service Device.
Wherein, key and the algorithm of generation authentication values are stored in advance in terminal and certificate server.The safety of key It is usually very high, it is not easy to be stolen.The algorithm for generating authentication values for example can be A3/A8 algorithms, CAVE algorithms or information Digest algorithm the 5th edition (Message Digest Algorithm 5, MD5) etc..
Step S110, certificate server receive the second authentication values, by comparing the first authentication values and the second authentication values pair two Dimension code is authenticated.
Specifically, if the first authentication values are consistent with the second authentication values, illustrate the terminal for initiating certification and generation Quick Response Code Terminal be same terminal, the terminal for initiating certification is legal terminal, then two-dimentional code authentication success, whereas if the first authentication Value and the second authentication values are inconsistent, illustrate that the terminal for initiating certification and the terminal of generation Quick Response Code are not same terminals, initiate to recognize The terminal of card is illegal terminal, then Quick Response Code authentification failure.
In step S104, in application system after reading 2 D code information in Quick Response Code, will be in 2 D code information IMSI be sent to before certificate server, application system can also judge the application message in 2 D code information whether be should With the relevant application message of system, if it is the relevant application message of this application system, then executing will be in 2 D code information IMSI is sent to the step of certificate server.
Access system is set between application system and certificate server.In step S104, application system can pass through IMSI in 2 D code information is sent to certificate server by access system.Specifically, application system sends 2 D code information To access system, access system receives the 2 D code information that application system is sent, and preserves the IMSI in 2 D code information and two The application message of code application is tieed up, then, the IMSI in 2 D code information is only sent to certificate server by access system.
In step s 106, random number is sent to the Quick Response Code application in terminal by certificate server, specifically may be used Following methods:Random number and IMSI are sent to access system by certificate server, and access system receives what certificate server was sent Random number and IMSI find the corresponding application messages of IMSI of reception according to the IMSI of preservation and application message, and will search To application message and random number the Quick Response Code application in terminal is sent to by application system so that initiate certification end End will not know the IMSI information in Quick Response Code.
After step S110 certificate servers are authenticated Quick Response Code, certificate server needs to send authentication result To application system.Specifically, the authentication result of Quick Response Code and IMSI are sent to access system by certificate server, and access system connects The authentication result and IMSI that certificate server is sent are received, the IMSI that reception is found according to the IMSI of preservation and application message is corresponded to Application message, and authentication result and the application message that finds are sent to application system.
By introducing access system, certificate server is without knowing that Quick Response Code can be completed according only to IMSI in application message Certification, so as to the application message for protecting Quick Response Code to apply.
The embodiment of the present invention is applied by the Quick Response Code in terminal and generates Quick Response Code according to the IMSI of itself SIM card, thus will Then vouchers of the IMSI as two-dimentional code authentication is unified to complete recognizing for Quick Response Code according to IMSI by the certificate server of mobile network Card improves the normalization of two-dimentional code authentication, also, will relative to the method by each application system independent authentication Quick Response Code An information of the IMSI as two-dimentional code authentication so that Quick Response Code can only be used by the legal terminal with the IMSI, other Illegal terminal can not use obtaining the Quick Response Code, to improve the safety of Quick Response Code application.
Fig. 2 is the information exchange schematic diagram of method one embodiment of the two-dimentional code authentication of the present invention.It is related in the present embodiment And interaction agent mainly include terminal, application system and certificate server.As shown in Fig. 2, the method for the embodiment includes:
Step 202, the Quick Response Code in terminal is applied from the SIM card of this terminal and obtains IMSI, and is generated according to basic information Quick Response Code, basic information include IMSI, can also include the application message of Quick Response Code application.
Step 204, the Quick Response Code in terminal is applied Quick Response Code being sent to application system, so that application system is from Quick Response Code Middle reading 2 D code information, 2 D code information include IMSI, can also include the application message of Quick Response Code application.
Wherein, the reading of 2 D code information can be realized as a function of application system in application system, also may be used To be realized by an independent recognizing apparatus, recognizing apparatus reads 2 D code information, is then sent to 2 D code information and answers Use system.
Step 206, application system receives Quick Response Code, 2 D code information is read from Quick Response Code, 2 D code information includes IMSI can also include the application message of Quick Response Code application.
Step 208, the IMSI in 2 D code information is sent to certificate server by application system.
Before the IMSI in 2 D code information is sent to certificate server, application system can also judge that Quick Response Code is believed Whether the application message in breath is the relevant application message of this application system, if it is the relevant application message of this application system, The step of IMSI in the 2 D code information is sent to certificate server is executed again.
Step 210, certificate server receives IMSI, generates a random number, according to the IMSI of reception, random number and prestores Key generate the first authentication values.
Step 212, random number is sent to the Quick Response Code application in terminal by certificate server.
Step 214, the Quick Response Code application in terminal receives the random number that certificate server is sent, then from this terminal itself SIM card obtains IMSI, and according to the IMSI of this terminal itself SIM card, random number and key the second authentication values of generation to prestore.
Step 216, the Quick Response Code in terminal is applied is sent to certificate server by the second authentication values.
Step 218, certificate server receives the second authentication values, by comparing the first authentication values and the second authentication values to two dimension Code is authenticated.The detailed process of certification is with reference to aforementioned, and which is not described herein again.
Step 220, authentication result and IMSI are sent to application system by certificate server.If certification passes through, the IMSI Corresponding terminal can carry out related service using corresponding application message in application system.
The embodiment of the present invention is applied by the Quick Response Code in terminal and generates Quick Response Code according to the IMSI of itself SIM card, thus will Then vouchers of the IMSI as two-dimentional code authentication is unified to complete recognizing for Quick Response Code according to IMSI by the certificate server of mobile network Card improves the normalization of two-dimentional code authentication, also, will relative to the method by each application system independent authentication Quick Response Code An information of the IMSI as two-dimentional code authentication so that Quick Response Code can only be used by the legal terminal with the IMSI, other Illegal terminal can not use obtaining the Quick Response Code, to improve the safety of Quick Response Code application.
Fig. 3 is the information exchange schematic diagram of the method further embodiment of the two-dimentional code authentication of the present invention.Relative to Fig. 2 pairs The embodiment answered, the present embodiment introduce access system in the verification process of Quick Response Code.As shown in figure 3, the method for the embodiment Including:
Step 302, the Quick Response Code in terminal is applied from the SIM card of this terminal and obtains IMSI, and is generated according to basic information Quick Response Code, basic information include IMSI, can also include the application message of Quick Response Code application.
Step 304, the Quick Response Code in terminal is applied Quick Response Code being sent to application system, so that application system is from Quick Response Code Middle reading 2 D code information, 2 D code information include IMSI, can also include the application message of Quick Response Code application.
Step 306, application system receives Quick Response Code, 2 D code information is read from Quick Response Code, 2 D code information includes IMSI can also include the application message of Quick Response Code application.
Step 308,2 D code information is sent to access system by application system.
Before 2 D code information is sent to access system, application system can also judge the application in 2 D code information Whether information is the relevant application message of this application system, if it is the relevant application message of this application system, then is executed institute State the step of IMSI in 2 D code information is sent to certificate server.
Step 310, access system receives the 2 D code information that application system is sent, and preserves the IMSI in 2 D code information The application message applied with Quick Response Code, to form the mapping relations of IMSI and application message in 2 D code information.
Step 312, the IMSI in 2 D code information is sent to certificate server by access system, does not need sending application letter Breath protects application message to the relevant information in certificate server side shield application system side to mobile network.
Step 314, certificate server receives IMSI, generates a random number, and according to IMSI, random number and prestore close Key generates the first authentication values.
Step 316, random number is sent to the Quick Response Code application in terminal by certificate server.
Step 318, the Quick Response Code application in terminal receives the random number that certificate server is sent, then from this terminal itself SIM card obtains IMSI, and according to the IMSI of this terminal itself SIM card, random number and key the second authentication values of generation to prestore.
Step 320, the Quick Response Code in terminal is applied is sent to certificate server by the second authentication values.
Step 322, certificate server receives the second authentication values, by comparing the first authentication values and the second authentication values to two dimension Code is authenticated.The detailed process of certification is with reference to aforementioned, and which is not described herein again.
Step 324, certificate server sends authentication result and IMSI to access system.
Step 326, access system receives the authentication result and IMSI that certificate server is sent, and according to the IMSI of preservation and Application message searches the corresponding application messages of IMSI received, and authentication result and the application message found are sent to application System.
Step 328, application system receives authentication result and application message.If certification passes through, which can utilize Application message carries out related service in application system.
On the one hand the embodiment of the present invention improves safety and the normalization of Quick Response Code application, on the other hand connect by introducing Enter system, certificate server is without knowing that the certification of Quick Response Code can be completed according only to IMSI for application message, so as to protect The application message of Quick Response Code application.
Another aspect according to the ... of the embodiment of the present invention proposes a kind of system of two-dimentional code authentication, with reference to figure 4, this implementation Example system include:Quick Response Code in terminal applies 402 and certificate server 404.
Quick Response Code in terminal applies 402, for obtaining IMSI from SIM card, and generates Quick Response Code, base according to basic information Plinth packet including IMS I can also include the application message of Quick Response Code application;It is additionally operable to Quick Response Code being sent to application system, with Just application system reads 2 D code information from Quick Response Code, and the IMSI in 2 D code information is sent to certificate server;Also Random number for receiving certificate server transmission, and according in this terminal itself SIM card IMSI, random number and prestore close Key generates the second authentication values, and the second authentication values are sent to certificate server.
Certificate server 404 generates a random number, and random number is sent to terminal for receiving IMSI, according to connecing IMSI, random number and key the first authentication values of generation to prestore of receipts;It is additionally operable to receive the second authentication values, by comparing the first mirror Weights and the second authentication values are authenticated Quick Response Code.
After authentication, certificate server 404 can be also used for authentication result being sent to application system.If certification is logical It crosses, terminal can carry out related service using application message in application system.
With reference to figure 5, in one embodiment, the system of two-dimentional code authentication is in addition to including the Quick Response Code in the terminal in Fig. 4 Using 402 and certificate server 404, can also include:Application system 506.
Application system 506, for judging whether the application message in 2 D code information is the relevant application of this application system Information if it is the relevant application message of this application system, then executes the IMSI in 2 D code information being sent to authentication service The step of device.
With reference to figure 6, in one embodiment, the system of two-dimentional code authentication is in addition to including the Quick Response Code in the terminal in Fig. 5 Using 402, certificate server 404 and application system 506, can also include:Access system 608.
Access system 608, the 2 D code information for receiving application system transmission, and preserve the IMSI in 2 D code information And application message;IMSI in 2 D code information is sent to certificate server.
Access system 608 is additionally operable to receive the random number and IMSI that certificate server is sent;According to the IMSI of preservation and answer With information searching to the corresponding application messages of IMSI received, and the application message found and random number are passed through into application system The Quick Response Code application being sent in terminal.
Access system 608, is additionally operable to after certificate server is authenticated Quick Response Code, receives certificate server and sends Authentication result and IMSI;The corresponding application messages of IMSI of reception are found according to the IMSI of preservation and application message, and will Authentication result and the application message found are sent to application system.
On the one hand the embodiment of the present invention improves safety and the normalization of Quick Response Code application, on the other hand connect by introducing Enter system, certificate server is without knowing that the certification of Quick Response Code can be completed according only to IMSI for application message, so as to protect The application message of Quick Response Code application.
One of ordinary skill in the art will appreciate that realizing that all or part of step of above-described embodiment can pass through hardware It completes, relevant hardware can also be instructed to complete by program, the program can be stored in a kind of computer-readable In storage medium, storage medium mentioned above can be read-only memory, disk or CD etc..
The foregoing is merely presently preferred embodiments of the present invention, is not intended to limit the invention, it is all the present invention spirit and Within principle, any modification, equivalent replacement, improvement and so on should all be included in the protection scope of the present invention.

Claims (12)

1. a kind of method of two dimension code authentication, which is characterized in that the method includes:
Quick Response Code in terminal, which is applied from client identification module SIM card, obtains international mobile subscriber identity IMSI, and according to base Plinth information generates Quick Response Code, and the basic information includes the IMSI;
Quick Response Code in terminal is applied is sent to application system by the Quick Response Code, so that application system is read from the Quick Response Code 2 D code information is taken, the IMSI in the 2 D code information is sent to certificate server;
Certificate server receives the IMSI, generates a random number, and two random number is sent in the terminal Code application is tieed up, according to the IMSI of reception, random number and key the first authentication values of generation to prestore;
Quick Response Code application in terminal receives the random number that certificate server is sent, and according to this terminal itself SIM IMSI, the random number on card and the key to prestore generate the second authentication values, and second authentication values are sent to certification Server;
Certificate server receives second authentication values, by comparing first authentication values and second authentication values to two dimension Code is authenticated.
2. according to the method described in claim 1, it is characterized in that, the basic information further includes:The application of Quick Response Code application Information.
3. according to the method described in claim 2, it is characterized in that, reading Quick Response Code letter from the Quick Response Code in application system After breath, the method further includes:
Application system judges whether the application message in 2 D code information is the relevant application message of this application system, if it is this The relevant application message of application system, then execute the step of IMSI in the 2 D code information is sent to certificate server.
4. according to the method described in claim 2, it is characterized in that, the application system is by the IMSI in the 2 D code information Being sent to certificate server includes:
Access system receives the 2 D code information that application system is sent, and preserves the IMSI in the 2 D code information and application letter Breath;
IMSI in the 2 D code information is sent to certificate server by access system.
5. according to the method described in claim 4, it is characterized in that, the certificate server random number is sent to it is described Quick Response Code in terminal apply including:
Access system receives the random number and IMSI that certificate server is sent;
Access system finds the corresponding application messages of IMSI of reception according to the IMSI and application message of preservation, and will find Application message and random number the Quick Response Code application in terminal is sent to by application system.
6. according to the method described in claim 4, it is characterized in that, after the certificate server is authenticated Quick Response Code, The method further includes:
Access system receives the authentication result and IMSI that certificate server is sent;
Access system finds the corresponding application messages of IMSI of reception according to the IMSI and application message of preservation, and by certification knot Fruit and the application message found are sent to application system.
7. it is a kind of two dimension code authentication system, which is characterized in that it is described two dimension code authentication system include:Quick Response Code in terminal Using and certificate server;
The Quick Response Code application, for obtaining international mobile subscriber identity IMSI from client identification module SIM card, and according to base Plinth information generates Quick Response Code, and the basic information includes the IMSI;It is additionally operable to the Quick Response Code being sent to application system, with Just application system reads 2 D code information from the Quick Response Code, and the IMSI in the 2 D code information is sent to certification clothes Business device;It is additionally operable to receive the random number that certificate server is sent, and according to the IMSI, described random in this terminal itself SIM card Number and the key to prestore generate the second authentication values, and second authentication values are sent to certificate server;
The random number for receiving the IMSI, one random number of generation, and is sent to terminal by the certificate server, According to the IMSI of reception, random number and key the first authentication values of generation to prestore;It is additionally operable to receive second authentication values, Quick Response Code is authenticated by comparing first authentication values and second authentication values.
8. system according to claim 7, which is characterized in that the basic information further includes:The application of Quick Response Code application Information.
9. system according to claim 8, which is characterized in that it is described two dimension code authentication system further include:
Application system, for judging whether the application message in 2 D code information is the relevant application message of this application system, such as Fruit is the relevant application message of this application system, then executes the IMSI in the 2 D code information being sent to certificate server Step.
10. system according to claim 8, which is characterized in that it is described two dimension code authentication system further include:
Access system, for receive application system transmission 2 D code information, and preserve the IMSI in the 2 D code information and Application message;IMSI in the 2 D code information is sent to certificate server.
11. system according to claim 10, which is characterized in that
The access system is additionally operable to receive the random number and IMSI that certificate server is sent;According to the IMSI of preservation and application Information searching is sent out the application message found and random number by application system to the corresponding application messages of IMSI received Give the Quick Response Code application in terminal.
12. system according to claim 10, which is characterized in that
The access system is additionally operable to after the certificate server is authenticated Quick Response Code, receives certificate server hair The authentication result and IMSI sent;The corresponding application messages of IMSI of reception are found according to the IMSI of preservation and application message, and Authentication result and the application message found are sent to application system.
CN201410555221.5A 2014-10-20 2014-10-20 The method and system of two-dimentional code authentication Active CN105592456B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201410555221.5A CN105592456B (en) 2014-10-20 2014-10-20 The method and system of two-dimentional code authentication

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201410555221.5A CN105592456B (en) 2014-10-20 2014-10-20 The method and system of two-dimentional code authentication

Publications (2)

Publication Number Publication Date
CN105592456A CN105592456A (en) 2016-05-18
CN105592456B true CN105592456B (en) 2018-10-30

Family

ID=55931591

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201410555221.5A Active CN105592456B (en) 2014-10-20 2014-10-20 The method and system of two-dimentional code authentication

Country Status (1)

Country Link
CN (1) CN105592456B (en)

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101668065A (en) * 2008-09-02 2010-03-10 银河联动信息技术(北京)有限公司 Method and system for transmitting, storing and displaying two-dimensional codes
CN102761870A (en) * 2012-07-24 2012-10-31 中兴通讯股份有限公司 Terminal authentication and service authentication method, system and terminal
CN103078862A (en) * 2013-01-06 2013-05-01 广州市建乔自动化科技有限公司 Two-dimensional code dual-factor authentication system and method, terminal equipment and server
CN103473677A (en) * 2013-05-13 2013-12-25 中华电信股份有限公司 Financial certificate transaction system and method by combining action communication device with two-dimensional bar code

Family Cites Families (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
ATE524897T1 (en) * 2008-09-17 2011-09-15 Gmv Soluciones Globales Internet S A METHOD AND SYSTEM FOR AUTHENTICATING A USER USING A MOBILE TELEPHONE DEVICE

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101668065A (en) * 2008-09-02 2010-03-10 银河联动信息技术(北京)有限公司 Method and system for transmitting, storing and displaying two-dimensional codes
CN102761870A (en) * 2012-07-24 2012-10-31 中兴通讯股份有限公司 Terminal authentication and service authentication method, system and terminal
CN103078862A (en) * 2013-01-06 2013-05-01 广州市建乔自动化科技有限公司 Two-dimensional code dual-factor authentication system and method, terminal equipment and server
CN103473677A (en) * 2013-05-13 2013-12-25 中华电信股份有限公司 Financial certificate transaction system and method by combining action communication device with two-dimensional bar code

Also Published As

Publication number Publication date
CN105592456A (en) 2016-05-18

Similar Documents

Publication Publication Date Title
TWI686075B (en) Identity verification method and device, electronic equipment
CN106209763B (en) A kind of login method and system
CN104579649B (en) Personal identification method and system
CN104767713B (en) Account binding method, server and system
KR101214839B1 (en) Authentication method and authentication system
CN106559783B (en) A kind of authentication method, device and system for WIFI network
CN103905194B (en) Identity traceability authentication method and system
CN106789834B (en) The method of user identity, gateway, PCRF network element and system for identification
CN107113613B (en) Server, mobile terminal, network real-name authentication system and method
CN104618315B (en) A kind of method, apparatus and system of verification information push and Information Authentication
CN105099692A (en) Safety verification method, device, server and terminal
CN106921640A (en) Identity identifying method, authentication device and Verification System
CN107196972B (en) A kind of authentication method and system, terminal and server
CN103905400B (en) A kind of service authentication method, apparatus and system
CN105898743B (en) A kind of method for connecting network, apparatus and system
CN112437068B (en) Authentication and key agreement method, device and system
CN102892102A (en) Method, system and device for binding mobile terminal and smart card in mobile network
CN106656969A (en) Payment state management method and system thereof, and network payment system
CN105792167B (en) A kind of method and device initializing credible performing environment, equipment
CN104219626B (en) A kind of identity authentication method and device
CN104935548B (en) Auth method, apparatus and system based on intelligent equipment of tatooing
CN107563764A (en) A kind of method of network payment and system
CN109587683B (en) Method and system, application program and terminal information database for SMS anti-monitoring
CN106412904B (en) Method and system for preventing counterfeit user authentication authority
CN114338158A (en) Authentication verification method, system and device

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant